Date: Fri, 22 Sep 2000 22:19:55 -0700 From: "Crist J . Clark" <cjclark@reflexnet.net> To: Cy Schubert - ITSD Open Systems Group <Cy.Schubert@uumail.gov.bc.ca> Cc: Warner Losh <imp@village.org>, Neil Blakey-Milner <nbm@mithrandr.moria.org>, Lyndon Nerenberg <lyndon@orthanc.ab.ca>, freebsd-security@FreeBSD.ORG Subject: Re: sysinstall DOESN'T ASK, dangerous defaults! Message-ID: <20000922221955.G367@149.211.6.64.reflexcom.com> In-Reply-To: <200009222328.e8MNSTF13435@cwsys.cwsent.com>; from Cy.Schubert@uumail.gov.bc.ca on Fri, Sep 22, 2000 at 04:28:27PM -0700 References: <200009222139.PAA71726@harmony.village.org> <200009222328.e8MNSTF13435@cwsys.cwsent.com>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, Sep 22, 2000 at 04:28:27PM -0700, Cy Schubert - ITSD Open Systems Group wrote: > In message <200009222139.PAA71726@harmony.village.org>, Warner Losh > writes: > > In message <20000922233318.A34189@mithrandr.moria.org> Neil Blakey-Milner wri > > tes: > > : Maybe you can give me some clue - why is rsh and login suid-root? Can > > : they function without it? > > > > No. Well, the kerberos support works, but they need to be suid root > > to bind to low ports. That's part of what makes the normal protcol so > > lame. > > The other annoying thing about rsh/krsh is that rshd/kshd open a > connection back to the client -- very firewall unfriendly. Just like that @#$% ftp. -- Crist J. Clark cjclark@alum.mit.edu To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20000922221955.G367>